Writing secure PHP applications
Keine weltbewegenden Neuigkeiten, aber da ein Update in Punkto Sicherheit nie falsch ist: Seven habits for writing secure PHP applications.
- Validate input
- Guard your file system
- Guard your database
- Guard your session data
- Guard against Cross-Site Scripting (XSS) vulnerabilities
- Verify form posts
- Protect against Cross-Site Request Forgeries (CSRF)